Workshop 6 - Workshop on Implementing your Infrastructure Securely in Public Cloud

Speakers: Dr. Ricci Ieong and Mr. Rafael Wong


HKPC Building, 78 Tat Chee Avenue, Kowloon, Hong Kong
Date: 26 - 27 Nov 2019 (2 days)


09:30 - 17:00
Non-member Fee
HK$6,800 (Early Bird: HK$6,600)
Member Fee for Organiser/Supporting Organisation HK$6,600 (Early Bird: HK$6,400)

Medium of Instruction

Cantonese with handout in English

Nature & Objectives

Nowadays, most companies employ cloud computing technology in their business operations and it does bring conveniences to them. However, conveniences come with risks, and there are a lot of security threats as well as uncertainties coming along. This intensive 2-days course aims at equipping attendees with practical knowledge of deploying web application in typical public cloud environment (e.g. AWS and Azure environment) from application architecture design, identity and account management, management plane security, network firewall management to security audit testing.

Course Outline

During the workshop, the attendees would be able to have hands on experience in implementing a typical web application in a public cloud with various security features. They include but are not limited to the following areas:

  • Secure virtual network architecture design
  • Cloud management plane security
  • Identity and access management
  • Data encryption
  • Auto-scaling
  • Load balancing
  • Log management
  • Database management

The workshop will be conducted in AWS (IaaS) and Azure (PaaS) environment. Some of the security features (e.g. WAF, CloudHSM) available on cloud platform will also be introduced during the workshop.

Who Should Attend

Target audiences would be individual who are interested in cloud deployment and familiar with network architecture and management. System Integrators, System Administrators / Engineers / Analysts, Technical Engineers / Managers, Information Security Analysts / Managers would also be beneficial by attending the course.


Dr. Ricci Ieong
Principal Consultant
eWalker Consulting (HK) Limited


Dr Ieong has over 15 years of industry experience in the Information Technology Industry as well as more than 15 years of experience in IT Security area specialized in Security Risk Assessment, IT Audit, Ethical Hacking & Penetration Test, Smart Card & Biometrics System deployment and Computer Forensics Investigation. He currently serves as Principal Consultant of eWalker Consulting (HK) Ltd.

He has worked for HP and founded the first HP e-Security Center (also known as Penetration Test Center) in Hong Kong. He has led and conducted over 100 security assessments, IT Security Audits, penetration tests and incident handling services for HKSAR government departments, banks and multinational organization in Hong Kong throughout these years. He is one of the founding instructors in the first diploma and graduate diploma course in computer security and forensics investigation recognized by HKSAR law enforcement team. In year 2002, Dr Ieong was invited by HKSAR government HK Police Force to courtroom as the first expert witness in HK Computer Crime Investigation.

Dr Ieong is the founding member and Council member of the Information Security and Forensics Society (ISFS). He recently founded the Cloud Security Alliance Hong Kong and Macau Chapter and participated as Director of Education. He has conducted over 20 technical IT security training and workshop on cloud computing security recently in 2010. Besides, he has been invited to provide cloud security awareness training to general public audience.

Mr. Rafael Wong
Senior Consultant
eWalker Group


Rafael currently serves as Senior Consultant of eWalker Consulting (HK) Ltd. and has more than 7 years of industry experience specialising in Security Risk Assessment, IT Audit, Ethical Hacking, Penetration Test and Computer Forensics Investigation.

Throughout Rafael’s career in IT security field, he has conducted numerous cloud security related training and workshop with Dr Ricci Ieong for various organisation, such as Hewlett-Packard (HPE), Hong Kong Productivity Council (HKPC) and so on.

He is authorised (ISC)2 Certified Cloud Security Professional (CCSP) and Certificate of Cloud Security Knowledge (CCSK) trainer.

Regarding to the Cloud Assessment, Rafael has conducted corresponding security assessment and audit, including public and private cloud security review, cloud application penetration test, for various enterprises.

Copyright © 2019 Hong Kong Productivity Council. All Rights Reserved.